REMARKS 

1. Claims 1, 3-5, 7-15, and 17-32 were pending. Claims 1, 15, 21-26, 28, 29, 31, and 32 
have been amended. Claims 33-48 have been added. Claims 1, 3-5, 7-15, and 17-48 are now 
pending. Reexamination and reconsideration of the application, as amended, are requested. 

2. Rejections under 35 U.S.C. § 102(e) and 35 U.S.C. § 103(a) 

(i) Claims 1, 7-9, 14-15, 21-23, and 28-31 were rejected in the Office Action under 35 
U.S.C. § 102(e) as being anticipated by Ensor et al (US Patent No. 5,721,780); 

(ii) Claims 3-4, 10-13, 17-18, 24-27, and 32-33 were rejected in the Office Action under 
35 U.S.C. § 103(a) as being unpatentable over Ensor et al (US Patent No. 5,721,780); 

(iii) Claims 5, 19, and 20 were rejected in the Office Action under 35 U.S.C. § 103(a) as 
being unpatentable over Ensor et al (US Patent No. 5,721,780) in view of Teper et al. (US Patent 
No. 5,815,665); 

(iv) Claims 1 1 and 25 were rejected in the Office Action under 35 U.S.C. § 103(a) as being 
unpatentable over Ensor et al (US Patent No. 5,721,780) in view of Brown et al. (US Patent No. 
5,941,947); and 

(v) Claims 32-33 were rejected in the Office Action under 35 U.S.C. § 103(a) as being 
unpatentable over Ensor et al (US Patent No. 5,721,780) in view of admitted prior art. 

The Applicant respectfully traverses the rejections and requests consideration of the following. 
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A. Ensor et al. Teach Network Access 

Ensor et al. teach a password authentication security system for a telecommunications network 
having a plurality of user terminals or subscriber stations communicably coupled to the network. 
The password is checked by the security system before a terminal or station is given access o the 
network. After the terminal or station has access to the network, Ensor et al. teach that the 
terminal or station has access to software resources on the network that can to downloaded to the 
terminal or station. Ensor et al. do not teach that a further authentication is performed after 
network access is gained and before any resource, such as a particular software for downloading, 
is accessed by the terminal or station. As such, once the terminal or station has gained access to 
the network via a password check, no further checking is performed by the security system to 
ascertain access to any resource on the network. 

Ensor et al. store an encrypted password at the user terminal or station, which necessarily 
involves contacting the user terminal or station. 

B. Applicants Teach Network and Resource Access 

Applicants disclose at Page 4, lines 6-17 of the present specification: 

When a user logs-on to an operating system, the user supplies a user-name and 
password. If the operating system recognizes the user then a unique user-token is generated 
by the system and the user-token is added to a user-token cache. At subsequent log-ons by 
the same user, the system returns the same user-token from the user-token cache. Then, if the 
user has requested a resource, the system checks the access-cache to see if the requested 
resource has already been accessed by the requesting user. If the requested resource has 
already been accessed by the requesting user then access to the resource is again provided by 
the system, (emphasis added) 

As such, Applicants teach still further authentication for each network resource. This extra 
check is beyond conventional password authentication required of any user to gain network 
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access. Rather, Applicants' inventive teaching of both network and network resource 
authentication requires that an access check be performed for any resource on the network that is 
requested by any user that has already gained access to the network itself. Ensor et al. do not 
teach the two-stage, network and network-resource access procedure as taught by the Applicants. 

C. Applicants Determine Resource Access Without User Contact Access 

The claimed invention does not store an encrypted password at the user during a resource 
access check. Rather, the claimed invention permits access to a resource without contacting the 
user, unlike Ensor et al. 

D. Commonly Owned Subject Matter under 35 U.S.C. § 103(c) 

Microsoft Corporation of Redmond, Wash, is listed as the assignee on the face of each of 
Teper et al. (US Patent No. 5,815,665) and Brown et al. (US Patent No. 5,941,947). The present 
application is a continuation of US Patent Application No. 08/689,838, filed on August 14, 1996, 
now US Patent No. 5,889,952 (the "Parent Case"). A copy of the assignment document for the 
Parent Case, attached hereto and recorded at Reel 8810, Frame 0594 in the records of the US 
Patent and Trademark Office, also identifies Microsoft of Redmond, Wash, as the corporation 
that is the assignee. As such, the present application was commonly owned with the subject 
matter of Teper et al. (US Patent No. 5,815,665) and Brown et al. (US Patent No. 5,941,947) on 
the filing date thereof. 

The Applicant respectfully submits that the rejections in the Office Action under 35 U.S.C. § 
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103(a) applying Teper et al. (US Patent No. 5,815,665) and Brown et al. (US Patent No. 
5,941,947) are to be withdrawn in view of the proscription of 35 U.S.C. § 103(c) against 
applying commonly owned subject matter against the claimed invention. 

E. Admitted Prior Art Obviousness Rejection Is Moot 

In view of the amendments made to independent Claim 31, the rejection of Claims 32-33 over 
Ensor et al (US Patent No. 5,721,780) in view of admitted prior art are moot. 

3. Neither the admitted prior art nor Ensor et al. teach, suggest, or imply the combinations of 
the recited elements in the pending new and amended independent claims. The Applicant 
respectfully submits that, as to the claims now pending, a prima facie case of obvious has not 
been made out, or in the alternative, the pending claims avoid the rejections. As such, the 
Applicant respectfully maintains that the pending independent claims are allowable, as are the 
claims respectively depending therefrom. Accordingly, the present application is in condition for 
allowance. Reconsideration of the rejections is requested. Allowance of Claims 1, 3-5, 7-15, 
and 1 7-48 at an early date is solicited. 
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Marked up Version of the Pending Claims Under 37 C.F.R. 1.121(c)Q)(n): 

Amend Claims 1,15, 21-26, 28, 29, 31, and 32 as follows and in accordance with 37 C.F.R.. 
1.121(c)(l)(ii), by which the Applicants submit the following marked up version only for claims 
being changed by the current amendment, wherein the markings are shown by brackets (for 
deleted matter) and/or underlining (for added matter): 

1 . (Thrice Amended) A computer-readable medium having a plurality of 
executable instructions at least a subset of which, when executed, implement a method 
comprising: 

upon receipt of an indication from a user having access to a computer network to access a 
resource on the computer network, checking a first memor y, without performing a file open 
procedure upon a file in which are stored any access permissions of users for access to the 
resource, to determine if the [a] user has previously accessed the [a] resource [on a computer 
network upon receipt of an indication from the user to access the resource]; and 

providing the user with access to the resource if the first memory indicates that the user 
has previously accessed the resource. 
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15. (Twice Amended) A method for providing access to a requested resource on a 
computer network, the method comprising: 

checking a first memor y, without performing a file open procedure upon a file in which 
are stored any access permissions of users for access to the requested resource, to determine if a 
user having access to the computer network has previously accessed [a] the requested resource; 
and 

providing the user with access to the requested resource if the first memory indicates that 
the user has previously accessed the requested resource. 

2 1 . (Once Amended) The method of claim 1 5 wherein the requested resource is a 

file. 

22. (Once Amended) The method of claim 1 5 wherein the requested resource is a 
volume of files. 

23. (Once Amended) The method of claim 15 wherein the requested resource is a 
memory device. 

24. (Once Amended) The method of claim 30 wherein storing the information in 
the first memory comprises overwriting other information associated with the requested resource 
in the first memory. 
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25. (Once Amended) The method of claim 24 wherein storing the information in 
the first memory comprises writing a token for the user in the first memory over another token 
for another user that had last previous access to the requested resource. 

26. (Once Amended) The method of claim 15 further comprising, if the requested 
resource is altered, removing indications from the first memory allowing access to the requested 
resource. 



# 

28. (Once Amended) The method of claim 15 wherein the request from the user 
indicates an operation to perform with respect to the requested resource, and further comprising: 

checking the first memory to determine if the user may perform the operation with respect 
to the requested resource; 

providing the user with access to the requested resource to perform the operation if the 
first memory indicates that the user may perform the operation with respect to the requested 
resource; 

checking a second memory to determine if the user may perform the operation with 
respect to the requested resource if the first memory does not indicate that the user may perform 
the operation with respect to the requested resource; 

providing the user with access to the requested resource if the second memory indicates 
that the user may perform the operation with respect to the requested resource; and 

storing information in the first memory indicating that the user may perform the operation 
with respect to the requested resource if, after checking the second memory, the second memory 
indicates that the user may perform the operation with respect to the requested resource. 
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29. (Once Amended) A computer-readable medium according to claim 1, further 
comprising: 

checking a second memory to determine if the user may access the [requested] resource if 
the first memory does not indicate that the user has previously accessed the [requested] resource; 

. providing the user with access to the [requested] resource if the second memory indicates 
that the user may access the [requested] resource; and 

storing information in the first memory indicating that the user may access the resource if, 
after checking the second memory, the second memory indicates that the user may access the 
[requested] resource. 

3 1 . (Once Amended) A method for controlling access to a requested resource on a 
computer network by a requesting user having access to the computer network , the method 
comprising: 

checking a memor y, without performing a file open procedure upon a file in which are stored 
any access permissions of users for access to the requested resource, to determine if [a] the 
requesting user has previously accessed the requested resource; and 

providing the requesting user with access to the requested resource if the requesting user has 
previously accessed the requested resource. 
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32. (Once Amended) A method according to claim 3 1 , further comprising: 
[opening the requested resource] performing a file open procedure upon the file in which are 

stored any access permissions of users for access to the requested resource to determine if the 

requesting user may access the requested resource if the memory does not indicate that the requesting 

user has previously accessed the requested resource; and 

providing the requesting user with access to the requested resource if the requested resource 

indicates that the requesting user may access the requested resource. 
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4. 



In the event that the Examiner finds any remaining impediment to a prompt allowance of 



this application which could be clarified by a telephonic interview, the Examiner is respectfully 



requested to initiate the same with the 



undersigned attorney. 




Respectfully submitted. 



BRADLEY K. DESANDRO 
Attorney for Applicant 
Registration No. 34,521 

LEE & HAYES PLLC 
Suite 500 

421 W. Riverside Avenue 
Spokane, Washington 99201 
Telephone: (509) 324-9257 
Facsimile: (509) 323-8979 
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